[Git][security-tracker-team/security-tracker][master] 2 commits: lts: add patch link for CVE-2024-4227/gsoap
Daniel Leidert (@dleidert)
dleidert at debian.org
Sun Aug 24 02:48:17 BST 2025
Daniel Leidert pushed to branch master at Debian Security Tracker / security-tracker
Commits:
70317b2a by Daniel Leidert at 2025-08-24T03:12:17+02:00
lts: add patch link for CVE-2024-4227/gsoap
- - - - -
1d8eca5f by Daniel Leidert at 2025-08-24T03:44:23+02:00
lts: triage CVE-2025-54880,CVE-2025-54881/node-mermaid for Bullseye
Issues don't affect Bullseye. Issues were introduced in v11.1.0 and in v10.9.0.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1579,9 +1579,11 @@ CVE-2025-55153
REJECTED
CVE-2025-54881 (Mermaid is a JavaScript based diagramming and charting tool that uses ...)
- node-mermaid <removed>
+ [bullseye] - node-mermaid <not-affected> (Vulnerable code not present)
NOTE: https://github.com/mermaid-js/mermaid/security/advisories/GHSA-7rqq-prvp-x9jh
CVE-2025-54880 (Mermaid is a JavaScript based diagramming and charting tool that uses ...)
- node-mermaid <removed>
+ [bullseye] - node-mermaid <not-affected> (Vulnerable code not present)
NOTE: https://github.com/mermaid-js/mermaid/security/advisories/GHSA-8gwm-58g9-j8pw
CVE-2025-54411 (Discourse is an open-source discussion platform. Welcome banner user n ...)
NOT-FOR-US: Discourse
@@ -70697,6 +70699,7 @@ CVE-2024-4227 (In Genivia gSOAP with a specific configuration an unauthenticated
- gsoap 2.8.135-1
NOTE: https://www.genivia.com/advisory.html#Upgrade_recommendation_when_option_-c++11_is_used_to_generate_C++11_source_code
NOTE: https://www.genivia.com/changelog.html#Version_2.8.133_(03/21/2024)
+ NOTE: Fixed by: https://sourceforge.net/p/gsoap2/code/222/
CVE-2024-48760 (An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitr ...)
- gestioip <itp> (bug #742110)
CVE-2024-47605 (silverstripe-asset-admin is a silverstripe assets gallery for asset ma ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a1925a75dbac25bff36e36d34f3ef56cd3b3637a...1d8eca5f4aa97547cce916c6dda2f9ab6d207ce1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a1925a75dbac25bff36e36d34f3ef56cd3b3637a...1d8eca5f4aa97547cce916c6dda2f9ab6d207ce1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250824/01aabcec/attachment.htm>
More information about the debian-security-tracker-commits
mailing list